Secure Coding mailing list archives

RE: Strategies for teaching secure coding practices

From: "Peter Amey" <peter.amey () praxis-cs co uk>
Date: Mon, 15 Dec 2003 11:15:27 +0000

[snip]

I had a look at the syllabus at http://www.cs.purdue.edu/homes/cs390s/

Also, what topics to you feel should be covered in an undergraduate
curriculum but later than the first year?


The main omission would seem to be an examination of programming languages and tools that can completely (or at least 
help) eliminate many of the insecurities the course currently only suggests palliatives for.  There are languages and 
techniques from the safety world that seem largely unknown (certainly largely unused) in the security world.  The best 
of these can statically eliminate attacks such as buffer overflow, resource exhaustion etc.

Peter

------------------------------------------------------------
Peter Amey                              Principal Consultant

Praxis Critical Systems
20, Manvers St.                         +44 (0)1225 466991
Bath                                    www.praxis-cs.co.uk
BA1 1PX                                 www.sparkada.com 
------------------------------------------------------------


**********************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the system manager.  The IT Department at Praxis Critical Systems can be contacted at [EMAIL PROTECTED]
This footnote also confirms that this email message has been swept by
MIMEsweeper for the presence of computer viruses.
www.mimesweeper.com
**********************************************************************


________________________________________________________________________
This e-mail has been scanned for all viruses by Star Internet. The
service is powered by MessageLabs. For more information on a proactive
anti-virus service working around the clock, around the globe, visit:
http://www.star.net.uk
________________________________________________________________________

Current thread:

Re: Strategies for teaching secure coding practices, (continued)
- Re: Strategies for teaching secure coding practices David Evans (Dec 12)
- Re: Strategies for teaching secure coding practices Dana Epp (Dec 12)
- Re: Strategies for teaching secure coding practices Crispin Cowan (Dec 12)
  - RE: Strategies for teaching secure coding practices David Crocker (Dec 13)
    - Re: Strategies for teaching secure coding practices Crispin Cowan (Dec 13)
    - RE: Strategies for teaching secure coding practices David Crocker (Dec 14)
    - Re: Strategies for teaching secure coding practices Brian Chess (Dec 14)
    - Re: Strategies for teaching secure coding practices Crispin Cowan (Dec 14)
- Re: Strategies for teaching secure coding practices Jared W. Robinson (Dec 12)
  - Re: Strategies for teaching secure coding practices Jeff Williams @ Aspect (Dec 13)
- RE: Strategies for teaching secure coding practices Peter Amey (Dec 15)